Ransomware victim disclosure
← All victimsOeTTINGER Brauerei
Claimed by Ransomhouse · listed 1 year ago
Status timeline
- ListedMay 5, 2025
- Data leakeddate unknown
At a glance
- Group
- Ransomhouse
- Status
- Data leaked
- Country
- Germany
- Listed on leak site
- May 5, 2025
- Data size
- 743 GB
- Ransom demanded
- $740
About the victim
AI dossier — public-source company profileOettinger is a German beverage manufacturer producing beer, lemonades, fruit drinks, and iced tea. The company markets itself on fair pricing and quality products, with a community engagement program (OeTTINGER Fördern) that funds local projects. The website indicates widespread distribution through food and beverage retailers across Germany.
- Industry
- Beverage Manufacturing & Distribution
Attack summary
Severity: high — Confirmed exfiltration of 743 GB of corporate data from a major beverage manufacturer; operational disruption through encryption. Large data volume and disclosed publication indicate significant business impact, though specific data classification (financial, customer, etc.) is not explicitly stated in the leak post.Ransomhouse claims to have encrypted Oettinger's systems and exfiltrated 743 GB of data. The group demanded $740 ransom and has published the victim on its leak site with disclosed status.
Data the group says was taken
AI dossier — extracted from the leak post- Business records
- IT systems data
- Corporate databases
What the group claims
A legacy that the Kollmar family has preserved for 300 years and that Pia Kollmar intends to carry into the future: 'I couldn’t do anything else,' - she says with a smile. 'OeTTINGER is not just my life. OeTTINGER is my - DNA.'
The leak post
captured from the group's site```
{"data":[{"id":"a1894b76b7004c75a3a0845799af49956592e3d9","display":"animated","header":"HOT NEWS","info":" Trellix is a global cybersecurity company.","url":"","sort":1,"views":"436242"},{"id":"336b257f582b17573c97578efd4b22762bf77344","sort":2,"header":"Trellix (McAfee & FireEye)","url":"https://www.trellix.com/","private":"false","revenue":"1.5-2 B$","employees":"5000","info":"Trellix is a global cybersecurity company formed from the October 2021 merger of McAfee Enterprise and FireEye. It provides services to over 50,000 business and government customers worldwide, protecting more than 200 million endpoints. The companys open and native extended detection and response (XDR) platform helps organizations confronted by todays most advanced threats gain confidence in the protection and resilience of their operations. Trellix, along with an extensive partner ecosystem, accelerates technology innovation through machine learning and automation to empower over 40,000 business and government customers with living security","statusDate":"DEPENDS ON YOU","status":"EVIDENCE","published":"NOT YET","action":"Encrypted","actionDate":"17/04/2026","volume":"~","content":"cybersecurity.html"…Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

